RSW920020021US1 
Mettwd for Provriing Seme Access to Infonnation Held in a Shared Repository 
P. Richanls, Jr.etal 
1/6 



FIG. 1 



100 

V 



Data Server 
f60 



140 



Access 
List 




Sequence 
Number 




Generator 




110^ 

Data Owner 
^15 0 

Sequence Number 
Generator 



RSW92Q020021US1 
Method for Proind^ Secure Acce» to informaton HeU h a Shared Repository 
P Richards, Jr etaL 
2/6 



FIG. 2 



200 

Sign up for Service using Web ^ 
Page of Data Server 

1 210 

L . 

Data Owner Provides Infomiation ^ 
to Datei Server 

1 220 

1 ^ 

Store Information 



Provide Keys for Public-Key 
Cryptographic System 



230 



RSW920020021US1 
Method for Prowling Secure Access to Infbntnabon Heid in a Shared Repository 
P Richards, Jr etal 
3^5 



FIG. 3 



360 



Reject 



300 



Data User Sends Data User Public Key 
to Data Owner 



I 



Data Owner Encrypts Data User Public 
Key, Using Data Owner Private Key 



V 



310 

V 



T 



320 



Send Encrypted Data User Public Key and 
Permission Command to Data Server 



I 



Compute Check Word by Decrypting, 
Using Data Owner Public Key 



V 



330 

V 



T 



Compare Check Word and Data User 
Public Key 



340 

V 




Record Permission in 
Access List 



350 

V 



RSW920020021US1 

Method Provdins Secure Access to Informatton Held n a Shared Repository 
P Richards, Jr etaL 
4/6 



FIG. 4 



490 



Reject 



400 



Data User Sends Data User Public Key 
to Date Owner 



V 



I 



410 



Data Owner Fetches Sequence Number and 
Combines with Data User Public Key 



T 



Encrypt Combination Using Data Owner 
Private Key 



420 

V 



I 



430 



Send Encrypted Combination and Permission 
Command to Data Server 



I 



V 



440 



Decrypt Combination Using Data Owner 
Public Key 



I 



Parse to Provide Check Word and 
Check Number 



V 



450 

V 



I 



460 



Compare Check Word and Data User 
Public Key 



I 



470 



Fetch Expected Sequence Number, Compare 
with Check Number 




No / Both 
Match?. 



Record Permission in 
Access List 



400 

V 



RSW920020021US1 
Method fbr Proudmg Secure Access to information Hekt in a Stared Repository 
P.RKhards, Jr etai 
5/6 



FIG. 5 



Receive Request to Transfer Information 



500 

V 



I 



Check Access List to Determine Wlietlier 5f 0 
Data Server has Permission to \J 
Transfer Information 



540 



V 



Deny 
Transfer 




Encrypt Infonnation Using 
Data User Public Key 



I 



Transfer Encrypted Information 
to Data User 



520 



V 



530 



V 



RSW920020021US1 
MettKXi for BovUmg Secure Access to Information HeU in a Shared ReposKory 
P RKhaids^Jr etal 
m 

M y H 



FIG. 6 



Data User Receives Data Owner Public Key 
from Date Owner 



.6p< 



I 



610 



Encrypt Using Data User Private Key 

i 620 

Send Request to Transfer Information 
and Encrypted Key to Data Server 

1 ~ 



630 

Generate Check Word by Decrypting Purported ly 
Data Owner Public Key, Using Data User 
Public Key 

i ~ 640 

Compare Check Word and Data Owner 
Public Key 




No , 

Match? 



660 

Check Access List to Detennine Whether 
Data Server has Permission to Transfer 




No , 

Permission?. 



Transfer information to Data User 



670 



J 



